CVE-2026-33670 | SiYuan up to 3.6.1 /api/file/readDir path traversal

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability was found in SiYuan up to 3.6.1. It has been classified as critical. Impacted is an unknown function of the file /api/file/readDir. This manipulation causes path traversal.

This vulnerability appears as CVE-2026-33670. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.

CVE-2026-33670 | SiYuan up to 3.6.1 /api/file/readDir path traversal

Post correlati

CVE-2024-22768 | Hitron DVR HVR-4781 up to 4.02 default credentials

CVE-2025-52378 | Nexxt NCM-X1800 up to 1.2.7 Device Management Page um_device_set_aliasname DEVICE_ALIAS cross site scripting (EUVD-2025-21440)

CVE-2025-38417 | Linux Kernel up to 6.12.34/6.15.3/6.16-rc2 ice pcpu_alloc_noprof memory leak

CVE-2024-2354 | Dreamer CMS 4.1.3 /admin/menu/toEdit id cross-site request forgery